“Trojan:Slocker” tech support scam, often disguised as the official Microsoft website, poses a grave threat. It spreads via deceptive websites and pop-up windows, like the “Ransomware EXE.01092-1_Alert.”
The “Trojan:Slocker” Scam falsely claims device infections, urging victims to call “Microsoft Support.” Once connected, scammers can disable security tools, extract sensitive data, and even install malware. They demand exorbitant fees for phony services and use untraceable methods to extort money. Victims are at risk of repeated targeting. Immediate action is crucial, including disconnecting from the internet, removing remote access software.
“Trojan:Slocker” Scam Overview
Our researchers uncovered the “Trojan:Slocker” pop-up scam during a probe into deceptive websites. This scam falsely claims that the visitor’s device is infected with trojan/ransomware, compelling them to dial the given helpline. It’s important to note that this scheme can be preceded by the “Ransomware EXE.01092-1_Alert” pop-up. Emphasizing that these infection claims are fraudulent and that this content has no affiliation with the Microsoft Corporation or any of its products or services.
Screenshot of a pop-up scam.
| Name | “Trojan:Slocker” Scam |
| Threat Type | Phishing, Scam, Social Engineering, Fraud |
| Tech Support Scammer Phone Number | +1 (866) 777-1016 |
| Symptoms | Fake error messages, fake system warnings, pop-up errors, hoax computer scan. |
| Distribution methods | Compromised websites, rogue online pop-up ads, potentially unwanted applications. |
| Similar behavitor | “Your computer is disabled. Please call Microsoft”, “Your Windows 10 is infected with viruses” |
| Damage | Loss of sensitive private information, monetary loss, identity theft, possible malware infections. |
Technical Analysis of “Trojan:Slocker” Scam
Most tech support scams involve cybercriminals gaining remote access to users’ devices, often facilitated through legitimate software such as AnyDesk, UltraViewer, TeamViewer, or similar applications.
How serious is this?
The “Trojan:Slocker” tech support scam is a highly serious and potentially devastating threat. It operates through deceptive websites and pop-up windows, often masquerading as the official Microsoft website. The scam falsely claims that the victim’s device is infected with “Trojan:Slocker,” putting personal and financial data at risk, and urgently advises contacting “Microsoft Support” to eliminate the ransomware. Once victims initiate contact, scammers can execute a series of malicious actions with grave consequences. They have the capability to disable or remove genuine security tools, install counterfeit anti-virus software, extract sensitive information and funds, and infect the system with various forms of malware, including trojans, ransomware, and cryptominers.
Data of interest to these cybercriminals includes login credentials for email, social media, e-commerce, online banking, and cryptowallets, as well as personally identifiable information and financial details like banking account information and credit card numbers. Furthermore, the “services” offered by scammers come at exorbitant costs, and they employ difficult-to-trace methods for extorting money, such as cryptocurrencies, prepaid vouchers, gift cards, and even cash hidden in packages sent through the mail. Moreover, successfully scammed victims are often targeted repeatedly, compounding the severity of the issue.
Leave a Comment